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DETAILED ACTION 

1 . This action is responding to application RCE dated 1 1/16/2005. 

2. Claims 1 - 5, 7, 8, 10 - 16, 18 are pending. Claims 1, 7, 10, 11, 18 have been 
previously amended. Independent claims are 1, 11. 

Response to Arguments 

3. Applicant's arguments with respect to claim*** have been considered but are 
moot in view of the new ground{s) of rejection. 

3.1 Applicant argues that the referenced prior art does not disclose 

(a) "... a level-one page table, the level-one page table including a plurality 
of level-one page table entries ... " ; 

(b) "... wherein the level-one page table entries each correspond to at 
least one level-two page table ... " ; 

(c) "... wherein the level-one page table entries each contain a predefined 
attribute, the predefined attribute being operable to indicate to the 
memory management unit whether entries in a corresponding level-two 
page table may designate certain predefined memory regions ..." 
(see Remarks Page 4, Lines 1-9) 

The Ginter (6,427,140) and Noel (6,125,430) prior art combination 
discloses a virtual memory system utilizing paging techniques. In 
addition, the Ginter (6,427,140) and Noel (6,125,430) prior art 
combination discloses a level one page table with level one entries and 
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level two page table with level two entries, and a level one table entry 
that designates a level two table memory page (i.e. a predefined 
memory region), (see Noel col. 3, lines 30-34; coL 12, lines 4-6: virtual 
memory system ; col. 12, lines 30-36: level one page table and level 
two page table ; col. 12, lines 51-55: level one parameter designates a 
level two paging entry (i.e. memory region)) 

Claim Rejections - 35 USC § 103 

4. Claims 1 - 5, 7, 8, 10 - 16, 18 are rejected under 35 U.S.C.103(a) as being 
unpatentable over Ginter et al. (U.S. Patent No, 6, 427,140) in view of Noel et al. (US 
Patent No. 6,125,430). 

Regarding Claim 1, Ginter discloses a secure processing unit (SPU) comprising 

a) an internal memory unit; (see Ginter col. 65, lines 13-15; SPU 500 in this 
example includes a single microprocessor 520 and a limited amount of memory 
configured as ROM 532 and RAM 534.) 

b) a processor; (see Ginter col. 65, lines 13-15; same as above (a)) 

c) tamper detection and response logic; (see col. 169, lines 32-36; A trusted 
environment of the present invention implemented, in part, through the use of 
tamper resistant semiconductor design, contains control logic, such as a 
microprocessor, that securely executes VDE processes. ) 
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d) an interface to external systems or components; (see Ginter col. 65, lines 29-34; 
Additional or alternate dedicated paths 538 may connect microprocessor 520 to 
the other components (e.g., encrypt/decrypt engine 522 via line 538a, real-time 
clock 528 via line 538b, bus interface unit 530 via line 538c, DMA controller via 
line 538d, and memory management unit (MMU) 540 via line 538e).) 

e) one or more buses for connecting the internal memory unit, the processor, the 
tamper detection and response logic, and the interface to external systems and 
components; (see Ginter col. 62, lines 8-18; A trusted environment of the present 
invention implemented, in part, through the use of tamper resistant 
semiconductor design, contains control logic, such as a microprocessor, that 
securely executes VDE processes. ) 

f) a memory management unit; (see Ginter col. 65, lines 15-20; memory 
management unit (MMU) 540.) 

h) a plurality of processor security registers; (see Ginter col. 107, lines 25-26; 
svi^apped process "context" information (e.g., the register set for the process 
when it is not processing)) 

i) a tamper-resistant housing, (see Ginter col. 169, lines 28-31; within a secure 

enclosure, such as a tamper resistant metal container or some form of a chip 
pack containing multiple integrated circuit components) 

Ginter does not specifically disclose a memory management system utilizing 
a level one table and a level two table. However, Noel discloses: 
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g) a level-one page table, the level-one page table including a plurality of level-one 
page table entries, wherein the level-one page table entries each correspond to 
at least one level-two page table, and wherein the level-one page table entries 
each contain a predefined attribute, the predefined attribute being operable to 
indicate to the memory management unit whether entries in a corresponding 
level-two page table may designate certain predefined memory regions; (see 
Noel col. 3, lines 30-34; col. 12, lines 4-6: virtual memory system ; col. 12, lines 
30-36: level one page table and level two page table ; col. 12, lines 51-55: level 
one parameter designates a level two paging entry (i.e. memory region)) 
It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Ginter to utilize a level one and level two memory 
management paging techniques as taught by Noel. One of ordinary skill in the art 
would be motivated to employ Noel in order to enable efficient and extensible future 
memory management implementations as inaccessible virtual address are reduced or 
eliminated, (see Noel col. 3, lines 13-18: " ... permit one or more gaps to be present 
within the range of virtual addresses which may be allocated to the executing process ... 
easily extensible to future implementations in which any gaps of inaccessible virtual 
addresses are decreased or eliminated ... ") 

Regarding Claim 2, Ginter discloses a secure processing unit as in claim 1 , in which 
the internal memory unit includes; 

(a) secure random access memory (RAM); (see Ginter col. 69, lines 26) ; 
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(b) secure non-volatile memory (NVRAM); (see Ginter col. 70, lines 40-44); 

(c) secure read-only memory (ROM) (see Ginter col. 69, lines 25). 



Regarding Claim 3, Ginter discloses a secure processing unit as in claim 2, in which 
the secure non-volatile memory is powered by a battery, (see Ginter col. 70, lines 45- 
47; NVRAM ("non-volatile RAM") 534b. RAM 534a may be volatile, while NVRAM 534b 
is preferably battery backed) 

Regarding Claim 4, Ginter discloses a secure processing unit as in claim 3, in which 
the secure non-volatile memory contains at least one cryptographic key. (see Ginter col. 
70, lines 54-63; certain highly sensitive information (e.g., certain load modules and 
certain encryption.key related information such as internally generated private keys) .... 
(NVRAM) 534b may be used for securely storing such highly sensitive 
information) 

Regarding Claim 5, Ginter discloses a secure processing unit as in claim 1, in which 
the internal memory unit includes a unique identifier for the secure processing unit, a 
private cryptographic key, a public cryptographic key, and a cryptographic certificate 
linking the unique identifier and the public cryptographic key. (see Ginter col. 120, lines 
43-56; The public key (PK) encryption type keys stored by SPU 500 and managed by 
key and tag manager 558 may include, for example, a device public key, a device 
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private key, a PK certificate, and a public key for the certificate.) and (see Ginter col. 
164, lines 40-43; A key identification number may be placed "in plain view" at the front 
of the records of secure database 610 so the SPE 503 can determine which key to use 
the next time the record is retrieved) 

Regarding Claim 7, Ginter discloses a secure processing unit as in claim 1 , further 
comprising: access control data, the access control data being operable to indicate 
whether access to predefined ( secure ) memory regions is restricted to certain software 
components or processor modes, (see Ginter col. 77, lines 43-48; Access Control List 
(ACL) structures, to user and process defined events, including state transitions. ROS 
602 may provide fill control information over pre-defined and user-defined application 
events.) 

Regarding Claim 8, Ginter discloses a secure processing unit as in claim 7, in which 
the access control data are stored in a critical address register, the critical address 
register comprising one of the processor security registers, (see Ginter col. 121 , lines 
59-65; Participants that receive appropriate permissions can register their processes 
(e.g., specific budgets) with summary services manager 560, which may then reserve 
protected memory space (e.g., within NVRAM 534b) and keep desired use and/or 
access parameters. Access to and modification of each summary can be controlled by 
its own access tag. ) 
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Regarding Claim 10, Ginter discloses a secure processing unit as in claim 1, whereby 
level-two page tables that may not designate the predefined memory regions are not 
stored in the internal memory unit, (see Ginter col. 69, lines 43-47; Since the external 
memory may not be secure, SPU 500 may encrypt and cryptographically seal code and 
other information before storing it in external memory.) 



Regarding Claim 11, Ginter discloses an information appliance comprising: 

a) a memory unit; (see Ginter col. 71, lines 7-10) 

b) a secure processing unit (SPU) (see Ginter col. 79, lines 37-41 ) comprising 

(1 ) a tamper resistant packaging, (see Ginter col. 169, lines 28-31 ); 

(2) tamper detection and response logic, (see Ginter col. 169, lines 32-36); 

(3) a secure memory unit, and (see Ginter col. 65, lines 13-15); 

(4) a processing unit, (see Ginter col. 65, lines 13-15); 

(5) including a memory management unit (see Ginter col. 65, lines 15-20); 

(6) a plurality of processor security registers; (see Ginter col. 107, lines 25- 
26). 

d) a bus for connecting the memory unit and the secure processing unit; (see col. 
62, lines 8-18; Bus 653 connects CPU(s) 654 to RAM 656, ROM 658, and I/O 
controller 660. One or more SPUs 500 may also be connected to system bus 
653. System bus 653 may permit SPU(s) 500 to communicate with CPU(s) 654, 
and also may allow both the CPU(s) and the SPU(s) to communicate (e.g., over 
shared address and data lines) with RAM 656, ROM 658 and I/O controller 660.) 
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wherein the secure processing unit is operable to perform both secure 
processing operations and at least some processing operations performed by a 
conventional information appliance processing unit, (see Ginter col. 80, lines 11- 
19; Non-secure and secure HPE may operate together with a secure SPE. ) 

Ginter does not specifically disclose a memory management system 
utilizing a level one table and a level two table. However, Noel discloses: 
c) a level-one page table and a plurality of level-two page tables, the level-one page 
table including a plurality of level-one page table entries and the level-two page 
table including a plurality of level-two page table entries, wherein the level-one 
page table entries each correspond to at least one level-two page table, and 
wherein the level-one page table entries each contain a predefined attribute, the 
predefined attribute being operable to indicate to the memory management unit 
whether a corresponding level-two page table may designate certain predefined 
(secure) memory regions; (see Noel col. 3, lines 30-34; coL 12, lines 4-6: virtual 
memory system ; col. 12, lines 30-36: level one page table and level two page 
table ; col. 12, lines 51-55: level one parameter designates a level two paging 
entry (i.e. memory region)) 
It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Ginter to utilize a level one and level two memory 
management paging techniques as taught by Noel. One of ordinary skill in the art 
would be motivated to employ Noel in order to enable efficient and extensible future 
memory management implementations as inaccessible virtual address are reduced or 
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eliminated, (see Noel col. 3, lines 13-18) 
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Regarding Claim 12, Ginter discloses an information appliance as in claim 1 1 , in which 
the information appliance is selected from the group comprising: a television set-top 
box, a portable audio player, a portable video player, a cellular telephone, a personal 
computer, and a workstation, (see Ginter col. 61, lines 58-5; and col. 65, lines 3-10; 
SPU 500 may also be integrated into other peripheral devices, such as CD-ROM 
devices, set-top cable devices, game devices, and a wide variety of other electronic 
appliances that use, allow access to, perform transactions related to, or consume, 
distributed information) 

Regarding Claim 13, Ginter discloses an information appliance as in claim 1 1 , in which 
the secure processing unit is the information appliance^s primary processing unit, (see 
Ginter col. 63, lines 23-26; Each VDE node or other electronic appliance 600 in the 
preferred embodiment may include one or more SPUs 500. SPUs 500 may be used to 
perform all secure processing for VDE 100.) 

Regarding Claim 14, Ginter discloses an information appliance as in claim 1 1 , in which 
the secure processing unit is the information appliance's only processing unit, (see 
Ginter col. 64, lines 42-46; SPU 500 may be integrated together with one or more other 
CPU(s) (e.g., a CPU 654 of an electronic appliance) in a single component or 
package.) 
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Regarding Claim 15, Ginter discloses an information appliance as in claim 11, in which 
the secure processing unit includes: 

a critical address register, the critical address register containing a plurality of access 
control bits, the access control bits being operable to indicate whether access to 
associated ( secure ) memory regions is restricted to predefined software components or 
processor ( protected ) modes, (see Ginter col. 49, lines 40-44; a hardware SPU may 
employ a host electronic appliance microcomputer operating in protected mode while 
performing VDE related activities, thus allowing portions of VDE processes to execute 
with a certain degree of security, and col. 275, lines 9-12; A VDE container is 
associated with specific access control information and rights that are described in one 
or more permissions control information sets (PERCs) associated with that container. 

Regarding Claim 16, Ginter discloses an information appliance as in claim 15, in which 
the critical address register comprises one of the processor security registers, (see 
Ginter col. 179, lines 44-55; REGISTER method 2400 may then retrieve the 
administrative request from the secure database and determine which response method 
to run to process the request) 

Regarding Claim 18, Ginter discloses an information appliance as in claim 1 1 , in which 
level-two page tables that may not designate the predefined memory regions are stored 
in the memory unit, and wherein the level-one page table and the level-two page tables 
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that may designate the predefined memory regions are stored in the secure memory 
unit, (see Ginter col. 69, lines 35-50; In these cases, secure processing steps performed 
by an SPU typically must be segmented into small, securely packaged elements that 
may be "paged in" and "paged out" of the limited available internal memory space. 
Memory external to an SPU 500 may not be secure. Since the external memory may 
not be secure, SPU 500 may encrypt and cryptographically seal code and other 
information before storing it in external memory. Similarly, SPU 500 must typically 
decrypt code and other information obtained from, external memory in encrypted form 
before processing (e.g., executing) based on it.) 



Conclusion 

5. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kyung H. Shin whose telephone number is (571) 272- 
3920. The examiner can normally be reached on 9 am - 7 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, David A. Wiley can be reached on (571) 272-3923. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 



Kyung H Shin 
Patent Examiner 
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